I'll be configuring the sample application in the next task, so I decided to deploy it at the same time that I'm deploying the agent application. agentsample. ear) the way I do below (without building my own sample application) is possible because the file is already built for me with the assumption that I used the default realm, "opensso" when installing the OpenSSO server.

Adding the above privilege enables the 'openssouser' to modify other users 'password in the directory with out this privilege, you would see "You do not have sufficient privileges to reset user passwords" message in the OpenDS access log when you try to change the password from opensso console or from any ldap tool such as ldapmodify.

In opensso developers guide we have detailed descriptions of how to develop a custom authentication module, since there are a plethora of authentication mechanisms out there and many different ways to invoke these mechanisms (the authN type).